$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666434303a3a2f34382d3438203d3e20323134323939.roa File: 326130353a646663333a666434303a3a2f34382d3438203d3e20323134323939.roa (raw, json) Hash identifier: 92F7VuZ17J54ETGBEWdPP4heHCGWfYwxiOwhP0mlk9g= Subject key identifier: 09:26:DF:CB:B0:CF:C7:21:41:17:1D:52:F8:4C:2E:97:11:37:E9:5E Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 03AC5158CA72C43EF3AECEEC0372CD717474C7B5 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666434303a3a2f34382d3438203d3e20323134323939.roa Signing time: Mon 26 May 2025 08:36:21 +0000 ROA not before: Mon 26 May 2025 08:31:21 +0000 ROA not after: Mon 25 May 2026 08:36:21 +0000 asID: 214299 IP address blocks: 2a05:dfc3:fd40::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Jun 2025 22:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:ac:51:58:ca:72:c4:3e:f3:ae:ce:ec:03:72:cd:71:74:74:c7:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: May 26 08:31:21 2025 GMT Not After : May 25 08:36:21 2026 GMT Subject: CN=0926DFCBB0CFC72141171D52F84C2E971137E95E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:dc:5d:00:6e:63:51:58:2f:a2:46:17:f9:5b: c3:c3:8a:26:fd:1f:f1:d7:b9:51:b6:01:10:78:95: dd:19:2d:d3:5f:93:4a:a0:fa:e9:d1:d0:70:40:ba: 0f:1c:ab:39:95:9a:bf:03:25:01:33:64:e6:cd:7b: 3e:84:5f:3e:ab:12:cf:3e:6b:78:3c:a4:89:ce:d3: 71:ec:33:0e:77:78:fb:37:09:df:67:b0:e4:88:2c: ec:bd:10:11:ab:6d:55:23:64:51:e8:7a:04:2f:e3: c1:7a:99:6c:54:cb:23:26:ce:0f:a9:06:77:a3:d8: 27:75:46:84:d2:73:84:5c:9c:95:e2:2f:7b:3d:57: 7d:2e:b2:19:22:fc:78:c5:e5:de:56:e4:17:14:09: b2:cb:ca:37:3a:ae:ca:40:62:2f:4f:4c:2f:65:db: 4f:0f:77:ab:d7:1d:4d:7b:a4:51:18:6d:58:17:ce: 63:f9:98:7f:f0:ef:a8:d8:73:e7:ad:14:12:be:c2: db:7b:66:f3:d0:ef:85:d9:85:8c:5c:70:df:7d:45: e0:b3:2b:18:61:c6:05:71:e8:a5:13:66:47:1b:35: ba:40:c6:9f:a9:2c:ab:0f:ed:58:05:bf:75:f3:fc: c5:f9:5d:c0:6d:78:c3:81:f8:90:6a:6e:d5:53:75: 9f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:26:DF:CB:B0:CF:C7:21:41:17:1D:52:F8:4C:2E:97:11:37:E9:5E X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666434303a3a2f34382d3438203d3e20323134323939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fd40::/48 Signature Algorithm: sha256WithRSAEncryption 72:97:d0:3d:e8:ad:9c:3e:51:52:b0:7a:d7:c5:05:e4:f0:98: 5e:8e:30:04:ca:2d:c4:35:37:f1:68:45:ba:53:75:98:be:1e: 66:9d:33:8c:7b:23:b7:d0:83:a7:67:2c:b7:66:d1:6f:2d:c9: 1a:4e:a2:d0:d5:6d:bb:09:76:da:0a:c7:fe:b2:a1:bb:b2:66: eb:49:21:f2:5e:be:b0:c2:72:48:a6:cc:16:81:97:31:8e:24: 93:a1:63:df:2a:c2:87:ca:46:7d:0c:a7:c3:fb:60:4d:c5:3b: ca:77:90:9a:15:c1:61:b5:19:81:47:2c:28:68:f2:ed:50:c5: 82:20:92:a5:a7:1e:ff:ee:16:da:6c:bd:5f:08:72:93:ae:43: b3:91:a4:ef:31:41:29:5e:63:c7:ef:b2:2b:66:ad:42:45:73: ab:8a:43:91:8c:7c:15:ea:21:c3:8b:a2:b0:9c:fc:b7:a6:19: b0:63:5d:93:d3:a1:dd:21:10:c7:0f:49:a6:da:0a:1f:f3:6d: f4:a4:82:a8:ea:67:53:ca:99:e7:0e:6c:be:3a:81:e0:20:43: 8a:37:9e:6e:f6:7b:d1:fe:5a:e5:3f:94:f9:b1:f2:b1:7a:76: f5:6d:57:bf:65:b8:2b:5d:e7:6a:b4:44:aa:85:f6:dc:45:ef: ab:bb:12:26 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUA6xRWMpyxD7zrs7sA3LNcXR0x7UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA1MjYwODMxMjFaFw0yNjA1MjUwODM2MjFaMDMxMTAvBgNV BAMTKDA5MjZERkNCQjBDRkM3MjE0MTE3MUQ1MkY4NEMyRTk3MTEzN0U5NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS3F0AbmNRWC+iRhf5W8PDiib9 H/HXuVG2ARB4ld0ZLdNfk0qg+unR0HBAug8cqzmVmr8DJQEzZObNez6EXz6rEs8+ a3g8pInO03HsMw53ePs3Cd9nsOSILOy9EBGrbVUjZFHoegQv48F6mWxUyyMmzg+p Bnej2Cd1RoTSc4RcnJXiL3s9V30ushki/HjF5d5W5BcUCbLLyjc6rspAYi9PTC9l 208Pd6vXHU17pFEYbVgXzmP5mH/w76jYc+etFBK+wtt7ZvPQ74XZhYxccN99ReCz KxhhxgVx6KUTZkcbNbpAxp+pLKsP7VgFv3Xz/MX5XcBteMOB+JBqbtVTdZ/9AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUCSbfy7DPxyFBFx1S+EwulxE36V4wHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzUzYTY0NjY2MzMz M2E2NjY0MzQzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNDMyMzkzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoF38P9QDANBgkqhkiG9w0BAQsFAAOCAQEAcpfQPeitnD5RUrB6 18UF5PCYXo4wBMotxDU38WhFulN1mL4eZp0zjHsjt9CDp2cst2bRby3JGk6i0NVt uwl22grH/rKhu7Jm60kh8l6+sMJySKbMFoGXMY4kk6Fj3yrCh8pGfQynw/tgTcU7 yneQmhXBYbUZgUcsKGjy7VDFgiCSpace/+4W2my9Xwhyk65Ds5Gk7zFBKV5jx++y K2atQkVzq4pDkYx8Feohw4uisJz8t6YZsGNdk9Oh3SEQxw9JptoKH/Nt9KSCqOpn U8qZ5w5svjqB4CBDijeebvZ70f5a5T+U+bHysXp29W1Xv2W4K13narREqoX23EXv q7sSJg== -----END CERTIFICATE-----Generated at Tue Jun 3 10:16:26 2025 by rpki-client